initialisation

2025-02-25 15:53:10 +01:00
parent d6fddabb6b
commit bad764beb4
18 changed files with 672 additions and 0 deletions
--- a/conf/node/config.yml
+++ b/conf/node/config.yml
@ -0,0 +1,107 @@
+debug: false
+app_name: [REDACTED]
+uuid: [REDACTED]
+token_id: cJU1GL3LmCFl9s8S
+token: [REDACTED (64 chars length)]
+api:
+  host: 0.0.0.0
+  port: 8080
+  ssl:
+    enabled: false
+    cert: /etc/letsencrypt/live/[REDACTED (node.domain.com)]/fullchain.pem
+    key: /etc/letsencrypt/live/[REDACTED (node.domain.com)]/privkey.pem
+  disable_remote_download: false
+  upload_limit: 100
+  trusted_proxies: []
+system:
+  root_directory: /var/lib/pterodactyl
+  log_directory: /var/log/pterodactyl
+  data: /var/lib/pterodactyl/volumes
+  archive_directory: /var/lib/pterodactyl/archives
+  backup_directory: /var/lib/pterodactyl/backups
+  tmp_directory: /tmp/pterodactyl
+  username: container
+  timezone: UTC
+  user:
+    rootless:
+      enabled: false
+      container_uid: 0
+      container_gid: 0
+    uid: 1000
+    gid: 1000
+  disk_check_interval: 150
+  activity_send_interval: 60
+  activity_send_count: 100
+  check_permissions_on_boot: true
+  enable_log_rotate: true
+  websocket_log_count: 150
+  sftp:
+    bind_address: 0.0.0.0
+    bind_port: 2022
+    read_only: false
+  crash_detection:
+    enabled: true
+    detect_clean_exit_as_crash: true
+    timeout: 60
+  backups:
+    write_limit: 0
+    compression_level: best_speed
+  transfers:
+    download_limit: 0
+  openat_mode: auto
+docker:
+  network:
+    interface: 172.173.0.1
+    dns:
+    - 1.1.1.1
+    - 8.8.8.8
+    - 1.0.0.1
+    - 8.8.4.4
+    name: wings
+    ispn: false
+    driver: bridge
+    network_mode: wings
+    is_internal: false
+    enable_icc: true
+    network_mtu: 1500
+    interfaces:
+      v4:
+        subnet: 172.173.0.0/16
+        gateway: 172.173.0.1
+      v6:
+        subnet: fdba:17c8:6c94::/64
+        gateway: fdba:17c8:6c94::1011
+  domainname: ""
+  registries: {}
+  tmpfs_size: 100
+  container_pid_limit: 512
+  installer_limits:
+    memory: 1024
+    cpu: 100
+  overhead:
+    override: false
+    default_multiplier: 1.05
+    multipliers: {}
+  use_performant_inspect: true
+  userns_mode: ""
+  log_config:
+    type: local
+    config:
+      compress: "false"
+      max-file: "1"
+      max-size: 5m
+      mode: non-blocking
+throttles:
+  enabled: true
+  lines: 2000
+  line_reset_interval: 100
+remote: [REDACTED (https://panel.domain.com)]
+remote_query:
+  timeout: 30
+  boot_servers_per_page: 50
+allowed_mounts:
+- /opt/docker/pterodactyl/mounts
+allowed_origins:
+- '*'
+allow_cors_private_network: true
+ignore_panel_config_updates: false
--- a/conf/panel/nginx/panel.conf
+++ b/conf/panel/nginx/panel.conf
@ -0,0 +1,110 @@
+# 2025-02-25
+
+server {
+    listen 80;
+    server_name _;
+    
+    root /app/public;
+    index index.html index.htm index.php;
+    charset utf-8;
+
+    location / {
+        try_files $uri $uri/ /index.php?$query_string;
+    }
+
+    location ~ \.php$ {
+        fastcgi_split_path_info ^(.+\.php)(/.+)$;
+        fastcgi_pass 127.0.0.1:9000;
+        fastcgi_index index.php;
+        include fastcgi_params;
+        fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
+        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+        fastcgi_param HTTP_PROXY "";
+        fastcgi_intercept_errors off;
+        fastcgi_buffer_size 128k;
+        fastcgi_buffers 256 16k;       
+        fastcgi_busy_buffers_size 256k;
+        fastcgi_temp_file_write_size 256k;
+        fastcgi_connect_timeout 300;
+        fastcgi_send_timeout 300;
+        fastcgi_read_timeout 300;
+    }
+
+    access_log off;
+    error_log  /var/log/nginx/pterodactyl.app-error.log error;
+
+    sendfile off;
+    tcp_nopush on;
+    tcp_nodelay on;
+
+    open_file_cache max=200000 inactive=20s;
+    open_file_cache_valid 30s;
+    open_file_cache_min_uses 2;
+    open_file_cache_errors on;
+
+    client_max_body_size 100m;
+    client_body_timeout 120s;
+    client_header_timeout 120s;
+    keepalive_timeout 120s;
+    send_timeout 120s;
+    reset_timedout_connection on;
+    keepalive_requests 100000;
+
+    client_body_buffer_size 128k;
+    client_header_buffer_size 1k; 
+
+    gzip on;
+    gzip_min_length 10240;
+    gzip_comp_level 1;
+    gzip_vary on;
+    gzip_disable msie6;
+    gzip_proxied expired no-cache no-store private auth;
+    gzip_types
+        text/css
+        text/javascript
+        text/xml
+        text/plain
+        text/x-component
+        application/javascript
+        application/x-javascript
+        application/json
+        application/xml
+        application/rss+xml
+        application/atom+xml
+        font/truetype
+        font/opentype
+        application/vnd.ms-fontobject
+        image/svg+xml;
+
+    location = /favicon.ico {
+        access_log off;
+        log_not_found off;
+    }
+
+    location = /robots.txt {
+        access_log off;
+        log_not_found off;
+    }
+
+    location ~ /\.ht {
+        access_log off;
+        log_not_found off;
+        deny all;
+    }
+
+    location ~* /(\.git|cache|bin|logs|backup|tests)/.*$ {
+        return 403;
+    }
+
+    location ~* /(system|vendor)/.*\.(txt|xml|md|html|json|yaml|yml|php|pl|py|cgi|twig|sh|bat)$ {
+        return 403;
+    }
+
+    location ~* /user/.*\.(txt|md|json|yaml|yml|php|pl|py|cgi|twig|sh|bat)$ {
+        return 403;
+    }
+
+    location ~ /(LICENSE\.txt|composer\.lock|composer\.json|nginx\.conf|web\.config|htaccess\.txt|\.htaccess) {
+        return 403;
+    }    
+}